挺多不错的东西,点点散散记到笔记就不知道跑哪去了。
代码审计
1、全面总结
http://find-sec-bugs.github.io/bugs.htm
2、python安全
https://github.com/bit4woo/python_sec
内网渗透
1、内网渗透攻防总结
https://github.com/infosecn1nja/AD-Attack-Defense
2、红队
https://github.com/yeyintminthuhtut/Awesome-Red-Teaming
https://github.com/bluscreenofjeff/Red-Team-Infrastructure-Wiki
Tools
1、payload fuzz
https://github.com/swisskyrepo/PayloadsAllTheThings
2、payload + user pass (针对国外)
https://github.com/fuzzdb-project/fuzzdb/
案例
1、赏金猎人漏洞案例
https://github.com/ngalongc/bug-bounty-reference